Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
instantsoft instantcms vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2013-6839
SQL injection vulnerability in InstantSoft InstantCMS 1.10.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the orderby parameter to catalog/[id].
Instantsoft Instantcms
1 EDB exploit
NA
CVE-2023-4649
Session Fixation in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
NA
CVE-2023-4188
SQL Injection in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4381
Unverified Password Change in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4650
Improper Access Control in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4651
Server-Side Request Forgery (SSRF) in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
NA
CVE-2023-4655
Cross-site Scripting (XSS) - Reflected in GitHub repository instantsoft/icms2 before 2.16.1.
Instantcms Instantcms
NA
CVE-2023-4652
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4653
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
NA
CVE-2023-4187
Cross-site Scripting (XSS) - Stored in GitHub repository instantsoft/icms2 before 2.16.1-git.
Instantcms Instantcms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »